Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer
File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer (raw, json)
Hash identifier: SeHMU2kYz8twHHXq+hmfuG6ebLPSSNk3In3+KowHAv0=
Subject key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0208DE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 26 Aug 2024 11:10:41 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 135102
IP: 2401:9ce0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133342 (0x208de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 26 11:10:41 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4c:25:5a:b3:b9:16:5c:9e:3e:53:6d:75:80:
96:66:5f:ad:90:60:c7:af:0e:bd:c8:2f:d6:95:1a:
1c:63:fe:2b:7a:f2:a1:b3:c1:b9:0f:9d:01:67:66:
e0:47:40:80:46:9f:2f:7d:e2:0c:f4:05:9d:0e:e1:
aa:c6:19:03:28:b2:77:82:e5:fe:26:5a:3a:f3:2b:
ff:34:ce:bd:b3:e6:a2:f0:ce:46:30:2d:cc:e8:3b:
2d:d5:54:14:53:f3:74:e6:25:f2:df:ac:e5:fa:5f:
9c:87:61:25:86:50:dc:c8:5d:53:b5:65:48:50:19:
29:09:74:a6:cf:ec:ac:2c:6c:6e:ad:6a:f6:47:36:
46:a7:18:1f:91:f9:53:db:17:e0:ec:3f:d6:30:9e:
fa:07:88:c4:21:85:9d:dd:12:b7:7f:5a:39:06:3c:
bb:93:93:65:91:d9:7e:c4:ac:9a:3b:2c:a2:7e:63:
89:24:42:e2:e0:4c:57:b9:39:2a:50:c7:6a:0d:db:
75:7f:15:f7:62:cc:5a:21:ec:29:6c:55:21:a9:b6:
95:a5:3a:4a:d5:b4:79:02:0c:50:72:6f:14:bc:ad:
f1:a6:4d:7d:81:66:bb:a2:65:5c:0f:1d:22:73:47:
f7:f7:8f:c5:1a:b2:97:b5:24:87:52:38:a8:e8:60:
56:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135102
sbgp-ipAddrBlock: critical
IPv6:
2401:9ce0::/32
Signature Algorithm: sha256WithRSAEncryption
16:61:ac:56:af:41:af:56:7b:7a:7e:3a:a3:d5:cb:61:88:98:
f8:7d:39:6c:53:ff:58:77:70:ec:eb:9d:85:66:19:0c:f9:73:
82:6d:ee:01:04:32:57:4b:f9:34:1b:da:8e:fa:67:ce:41:64:
70:45:f6:26:31:c8:c4:c9:c2:6b:bf:28:a7:c0:c0:8d:a1:22:
19:27:b0:4f:f7:ee:7e:c5:c0:3b:a8:ba:48:f7:2a:f3:90:7f:
e5:dd:af:9f:54:3e:aa:11:b6:51:d3:eb:06:fe:62:26:02:ef:
e7:5e:7c:2c:4d:01:56:0b:4a:15:d2:a6:32:d7:60:5b:2b:a2:
40:5b:1f:d1:49:76:5e:5a:2a:b9:76:71:42:84:8a:1e:b2:7f:
c8:4e:4c:c1:e8:2a:c9:ce:46:c0:80:15:b2:1d:21:d8:8f:05:
35:0c:f9:d1:9e:51:99:bc:47:b8:80:6e:d0:57:75:7a:9e:fa:
ab:4b:ea:98:26:d6:a5:b9:b2:f0:df:3d:60:13:4f:14:7b:6f:
41:35:b0:dd:69:ff:b6:fb:57:d6:cf:52:50:cd:de:a7:cb:8d:
11:c5:c4:ec:22:d5:f5:38:3d:ad:e4:bf:cc:af:b8:83:57:0b:
f8:5d:76:02:98:ae:4e:8e:0e:e7:b3:8c:5c:2b:fb:6f:ee:30:
92:a4:6f:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:52 2024 by rpki-client on console.sobornost.net